STIGViewer Trial workspace — loading your subscription…

NIST 800-171 v2

110 security requirements available

3.1.15Derived Requirement

Access Control

Security Requirement

Authorize remote execution of privileged commands and remote access to security-relevant information.

Discussion

A privileged command is a human-initiated (interactively or via a process operating on behalf of the human) command executed on a system involving the control, monitoring, or administration of the system including security functions and associated security-relevant information. Security-relevant information is any information within the system that can potentially impact the operation of security functions or the provision of security services in a manner that could result in failure to enforce the system security policy or maintain isolation of code and data. Privileged commands give individuals the ability to execute sensitive, security-critical, or security-relevant system functions. Controlling such access from remote locations helps to ensure that unauthorized individuals are not able to execute such commands freely with the potential to do serious or catastrophic damage to organizational systems. Note that the ability to affect the integrity of the system is considered security-relevant as that could enable the means to by-pass security functions although not directly impacting the function itself.

Framework
NIST SP 800-171 Rev 2
Family
Access Control
Requirement Type
derived

Related Frameworks

7 paths across 2 frameworks
NIST 800-531 mapping
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI6 mappings
CCI-000070
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002316
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002317
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002318
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002319
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-002320
1.00
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

156 STIGs reach this control through 25 CCIs via 800-53 control AC-17. Expand a row to see the responsible NICE and O*NET roles.

Operating System — Desktop

5 STIGs

Operating System — Server

26 STIGs
Oracle Linux 8 Security Technical Implementation Guide
V2R82026-02-1310 of 375 findings match
Oracle Linux 9 Security Technical Implementation Guide
V1R52026-02-178 of 448 findings match
Show 18 more STIGs in this category →
IBM AIX 7.x Security Technical Implementation Guide
V3R22026-02-066 of 283 findings match
Anduril NixOS Security Technical Implementation Guide
V1R22025-08-193 of 103 findings match
Solaris 11 X86 Security Technical Implementation Guide
V3R52026-02-192 of 216 findings match

Operating System — Mainframe

10 STIGs
IBM z/OS ACF2 Security Technical Implementation Guide
V9R82026-03-099 of 225 findings match
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-099 of 222 findings match
IBM z/OS TSS Security Technical Implementation Guide
V9R82026-03-099 of 230 findings match
Show 2 more STIGs in this category →

Operating System — Mobile

5 STIGs

Network Device

37 STIGs
Application Layer Gateway Security Requirements Guide
V2R32025-09-157 of 160 findings match
Cisco ASA VPN Security Technical Implementation Guide
V2R22024-08-226 of 41 findings match
Show 29 more STIGs in this category →
SDN Controller Security Requirements Guide
22024-05-283 of 34 findings match
Cisco ISE NAC Security Technical Implementation Guide
V2R32025-12-101 of 30 findings match
Domain Name System (DNS) Security Requirements Guide
V4R22025-12-191 of 119 findings match
F5 NGINX Security Technical Implementation Guide
V1R12026-01-071 of 32 findings match
Firewall Security Requirements Guide
V3R32025-09-221 of 35 findings match

Web / Application Server

21 STIGs
Web Server Security Requirements Guide
V4R42025-09-106 of 126 findings match
Application Server Security Requirements Guide
V4R42025-09-105 of 137 findings match
Show 13 more STIGs in this category →

Virtualization / Container

34 STIGs
Kubernetes Security Technical Implementation Guide
V2R62026-02-125 of 92 findings match
Virtual Machine Manager Security Requirements Guide
V2R32025-09-105 of 198 findings match
Container Platform Security Requirements Guide
V2R42025-09-103 of 188 findings match
Show 26 more STIGs in this category →

Cloud / Identity Service

1 STIG

Endpoint Security Management

12 STIGs

Productivity Application

4 STIGs

Uncategorized

1 STIG